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What is claimed is: 

1 . A method for effecting controlled access to a privileged account on a computer system 
comprising: 

logging into an account with a user id and an account name; 

determining whether the account name is in a list of privileged account names and 
allowing access to the account if the account name is not in the privileged account list; 

determining whether the user id is in a list of user ids having permission to access 
privileged accounts and allowing access to the account if the user id is in the list of user ids 
having permission to access privileged accounts; 

recording a reason for accessing the account; 

notifying a manager of the privileged account of the login; 

recording keystrokes in a log file while logged into the account; 

terminating the login; and 

notifying the manager of the privileged account of the login termination. 

2. A method in accordance with claim 1 further comprising: 
determining whether the log file is tampered with; and 

terminating the login in response to determining that the log file is tampered with. 

3. A method in accordance with claim 1 further comprising: 

denying write permission to the log file after the step of terminating the login. 

4. A method in accordance with claim 1 further comprising: 
recording keystrokes while accessing the account in a duplicate log file. 

5. A method in accordance with claim 4 further comprising: 
determining whether the log file is tamped with; 

terminating the login and transmitting the duplicate file in response to determining that 
the log file is tampered with. 

6. A method in accordance with claim 1 further comprising: 
transmitting the log file to the account manager. 

7. A method in accordance with claim 1 further comprising: 
entering a password in order to access the privileged account; 

determining whether the password associated with the user id matches the entered 
password; and 
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permitting access only if the password associated with the user id matches the entered 
password. 

8. A method in accordance with claim 1 further comprising: 
notifying the manager of the privileged account if the login is not successful. 
5 9. A method in accordance with claim 1 further comprising: 

compressing the log file after terminating the login. 
10. A method in accordance with claim 1 further comprising: 
recording keystrokes while accessing the account in a duplicate log file; 
deleting the duplicate log file responsive to a determination that the log file has not been 
10 tampered with. 



-8 of 9- 



